- 论坛徽章:
- 0
|
#!/usr/bin/env python
#Filename: jxxyhh.py
import string, getopt, sys, httplib, urllib, time
def main():
#定义一堆头文件>_<!
HOSTNAME = '10.254.0.9'
ip='220.189.67.3'
username='2004090600010'
password='111111'
#portallonindata是用于保存自己电脑的用户名密码的,抓包新发现
#。。。BS下狗日的华为,哈哈!
#开始第一轮连接,不带JSESSIONID的,目的是从服务器获得一个用于后续的连接。
headers = {'Accept-Language':'zh-cn','Accept-Encoding': 'gzip, deflate','User-Agent': 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)','Host': HOSTNAME ,'Connection':' Keep-Alive',
}
conn = httplib.HTTPConnection(HOSTNAME)
conn.request('GET', '/', None, headers)
response = conn.getresponse()
s = response.read()
print s
cookie1 = response.getheader("Set-Cookie"
print "=====Cookie1====", cookie1 #就是这个cookie
a=cookie1[207:221] #a是JSESSIONID,笨人用笨办法了,嘿嘿。
print a
#准备第二次的连接,用于POST自己的挨劈地址=_=!这里调了好久,
headers = {'Accept': ' image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, */*','Referer': 'http://10.254.0.9/', 'Accept-Language': 'zh-cn', 'Content-Type': 'application/x-www-form-urlencoded','Accept-Encoding': 'gzip, deflate','User-Agent': 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1:SV1)','Host': HOSTNAME ,'Connection':' Keep-Alive','Cache-Control':' no-cache',
'Cookie': 'cookieEnableTest=cookieEnable; isPNP=0; needActiveX=1,JSESSIONID='+a,
}
#这一步我这里不能少, 需要发送自己的IP, 这里的IP在后面会和刚才session联系起来, 以后keep-alive的参数要用到
#登录http://10.254.0.9/webLogin.jsp
conn = httplib.HTTPConnection(HOSTNAME)
conn.request('POST', '/webLogin.jsp', "LocalIP=" + ip, headers)
response = conn.getresponse()
s = response.read()
print s #刚开始时,老是NOCOOKIE,头大-_-!
#第三步, 这是最关键的一步, 就是发送认证信息的请求
#third https://10.254.0.9/secu/webLogin.jsp,开始时候定义下SSL发送头
params = urllib.urlencode({'connectname':'',
'connecttype' : -1,
'consumeright' : 0,
'separatecard' : 0,
'localip' : ip,
'IsIndex' : 0,
'username' : username,
'password' : password,
'cookiedate' : 0})
print '===params===',params
conn.request('POST', '/secu/webLogin.jsp', params, headers)
#在WINXP下这里老出错!在LINUX下没有问题。应该是在WIN下的包安装不完全的原因。
response = conn.getresponse()
s = response.read()
start = string.find(s, HOSTNAME)
end = string.find(s, "')", start)
s = s[start:end]
URL = s
cookie3 = response.getheader("Set-Cookie"
print URL
print "cookie3----->>>",cookie3
#第四步, 获取注册信息,这是keep-alive的关键步骤,这里的请求地址是上个response返回的.
#four get regist parameters
conn = httplib.HTTPConnection(HOSTNAME)
headers = {'Accept': ' image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, */*',
'Accept-Language':'zh-cn','Accept-Encoding': 'gzip, deflate','User-Agent': 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)','Host': HOSTNAME, 'Connection':' Keep-Alive', 'Cookie': 'cookieEnableTest=cookieEnable; isPNP=0; needActiveX=1; JSESSIONID='+a,
}
start = string.find(URL, "/"
end = string.find(URL, "?", start)
URL2 = URL[start:end]
params = URL[end+1:]
print URL2,
print headers
print "=====params====", params
idnum=params[13:26]
print "==numkey==",idnum
conn.request('GET', URL2, params, headers)
response = conn.getresponse()
s = response.read()
print "主要注册信息网页"
print s
#是服务器应答的大括号你的东西。
#loginstr = s[start:end]
print "新截取的信息"
ac=s[2697:3090]
print ac
#loginstr = s[start:end]
loginstr = ac
loginstr = string.replace(loginstr, "\r", ""
#string.replace(string1,a,b) 把把STRING1字符串里面的A,全部替换成B
loginstr = string.replace(loginstr, "\n", ""
loginstr = string.replace(loginstr, " ", ""
loginstr = string.replace(loginstr, "'", ""
print loginstr
L = string.split(loginstr, ',')
print '=====L====',L
user = L[0]
isnno = 1204
loginkey = L[6]
ip2 = L[7]
#是服务器应答的大括号你的东西。
#loginstr = s[start:end]
#的格式应该类似于 2004090600010,.. 1,..0,..0,..2,..1000,....mGyL0TosmUBo4GyKIvA2-RBhVr4vznuxkQA9,..1
#第五步, 这时已经获取了注册信息,但是还不能keep-alive, 这一步是请求一个新的sessionID, 这个ID才是keep-alive用的
#这个是网络上铁通用户的说法,自己抓包也是这样,可是我一直用初始的JSSESSIONID也没问题,成功了7小时.
path='/ClientProcess.jsp?MsgType=2&UserName=%s&LocalIP=%s&SeparateCard=0&ISNNO=1024&LoginKey=%s&isPNP=0&httpIP=%s HTTP/1.0' %(username,ip,loginkey,ip)
print '===path===',path
conn = httplib.HTTPConnection(HOSTNAME)
headers = {'Accept': 'text/html', 'User-Agent': 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)','Cookie':cookie1}
print headers
conn.request('GET', path, None, headers)
response = conn.getresponse()
s = response.read()
print s
klcookie = response.getheader("Set-Cookie"
print "=====klCookie====", klcookie
#这里新的JSESSIONID没获取成功!*_*!
#重要参数列表:loginkey:kl-cookie:还有一个数字ID(?貌似不重的。):大致就这些了。^_^
print '====user====', user
print "=====loginkey====",loginkey
print "===idnum====",idnum
#最后几步了。
headers = {'Accept': 'image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, */* ',
'Accept-Language': 'zh-cn','Accept-Encoding': 'gzip, deflate','User-Agent': 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)',
'Host': HOSTNAME, 'Connection': 'Keep-Alive',
'Cookie':'cookieEnableTest=cookieEnable;isPNP=0;needActiveX=1;JSESSIONID='+cookie1
}
path = '/myportal/myindex.jsp?key='+idnum+' HTTP/1.0'
print path
conn = httplib.HTTPConnection(HOSTNAME)
print headers
conn.request('GET', path, None, headers)
#要用的东西。。。。。。
pathx = '/ClientProcess.jsp?MsgType=1&ISNNO=1000&LocalIP=%s&LoginKey=%s&isPNP=0&httpIP=%s HTTP/1.0' %(ip,loginkey,ip)
print pathx
headersx = {'Accept': 'image/gif, image/x-xbitmap, image/jpeg, image/pjpeg, application/x-shockwave-flash, */* ',
'Accept-Language': 'zh-cn','Accept-Encoding': 'gzip, deflate','User-Agent': 'Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)',
'Host': HOSTNAME, 'Connection': 'Keep-Alive','Cookie ': ' JSESSIONID= '+cookie1
}
print headersx
conn = httplib.HTTPConnection(HOSTNAME)
conn.request('GET', pathx, None, headersx)
#每5分钟保持连接的调用函数
def kl(HOSTNAME,pathx,headersx):
conn = httplib.HTTPConnection(HOSTNAME)
conn.request('GET', pathx, None, headersx)
for i in range(1,120):
time.sleep(300.0)
kl(HOSTNAME,pathx,headersx)
else:
print "Too long ! if you need ,you can retry!"
main()
以上这个是最新的的.
图形化的界面正在努力做 |
|
免费注册
楼主: 純白
发表于 2007-08-19 11:53
发表于 2007-09-28 20:50
不错啊。。。